Forum

** PAY PAL Tracking**UNder VIRUS /ALERTS!!!
 

HI;
during a routine scan for viruses/bugs,.,. this showed up yesterday,, Ive NEVER seen this befre, anyone else??

I think u can enlarge the pic, not sure, if u cant read it, heres what it says, under Alerts:
Paypal 112.20.7.net/paypal.112.207.net

it might be a trojan/spyware that poses as some paypal site or file or something.
i dont think paypal would be putting out spyware/trojans, that stuff would explode in their face so bad that it would probably be all over cnn

I use Kaspersky Internet Security, I always receive alerts when Ebay or Paypal try to track my IP address.

I checked my Kaspersky but there was no paypal.net at this point today.

i use eset smart security, my firewalll and antivirus didnt reg anything either.
ebayhateluv you might have gotten infected by a virus :(

i am confident that you have visited some sort of scam paypal sites.. which u might have done unknowingly by clicking on the scam email links people send.. pretending tobe ebay or paypal.... make sure u change all ur login passwords.. it might be too late and they might already have all ur details without u even thinking of.. just tobe sure.. clean/reinstall ur pc.. change ur paypal passwords from some other machine not the one with this security threat as might be trojan already in place... and if u change password they will know that too.. i have been hit once and now avoid opening any such scam emails..

notice that the domain name is actually 2o7.net, and the word 'paypal' is a subdomain. A quick look into 2o7.net reveals its part of ominiture

I'm not sure who omniture are, but from all indications it looks like their a data harvester for improving market targetting for businesses who sign with them, one of them, is probably paypal. You virus checker has probably thrown up because the cookie is flagged as an infringement on privacy because it is using cross domain references (at a guess)...

man .. I'd just like to apologise for my previous post. thats terrible english, I hope you get the gist anyway. I could edit it, but I'd rather leave it as a memorial to superbly bad grammar.

LOL. Not quite understanding that. You mean that the intrusion has been picked
and therefore given an alert?

hahaha ytl. you seem knowledgable in the field, and i understood what you wrote :)

Paypal has been exposed on the news before for its shady practices, and people are still using it. What's to stop them now?

But if that might be the case, would there not be more people around making
complaints?

The general public doesn't have clue about this kind of stuff.. Most of the people here do, of course, but not most people in general.

I would say this is nothing to worry about, nothing to do with a virus. If you look carefully it is filed under "Browser Cookies" by Spyware Doctor. The text about "Trojan⊗⊗⊗⊗Alert" refers to something further down in that screenshot, not to the "paypal" cookie.

In fact, it's not even a Paypal cookie, it's a cookie set by 2o7.net. That is just a banner add site, they serve banners on many sites including Paypal. Any time you see one of their banners you also get a cookie from them. If you see an add on paypal.com you get a cookie called "paypal.2o7.net", if you see an add on CNN.com you get one called "cnn.2o7.net", etc. These cookies let 2o7.net know which adds you've looked at, which ones you've clicked on, etc. Paypal most likely doesn't even get this info from 2o7.net, only their advertising cash.

Of course, that doesn't mean Paypal doesn't use their own cookies to track you. They do, but those are called something@paypal.com